Lucene search
K

16 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-5897

Malware in sbrugna...

9.8CVSS9.4AI score0.02135EPSS
Exploits1References2
Wiz blog
Wiz blog
added 2022/09/22 5:41 p.m.5 views

Wiz Receives Morgan Stanley Innovation Award at 20th Innovation Summit

Recognition in the Cyber category honors Wiz for its exceptional technology partnership with one of the world’s leading financial institutions...

6.9AI score
Exploits0
Malwarebytes
Malwarebytes
added 2022/09/22 11:45 a.m.11 views

Morgan Stanley's years-long "extensive failure" to protect customer data ends in huge fine

On Tuesday, the Securities and Exchange Commission SEC charged financial company Morgan Stanley a $35M fine for "the firm's extensive failures, over five years, to protect the personal identifying information, or PII, of approximately 15 million customers. The company agreed to settle the penalty...

1.5AI score
Exploits0
ThreatPost
ThreatPost
added 2021/07/13 2:36 p.m.34 views

New CISA Director Confirmed, W.H. Gains Cyber-Director

The U.S. has made a key move to shore up its cybersecurity strategy, with the confirmation of Jen Easterly as the director of the Cybersecurity and Infrastructure Security Agency CISA on Monday. Easterly, a former official at the National Security Agency from 2011 to 2013 and two-time Bronze Star...

6.9AI score
Exploits0References18
Information Security Automation
Information Security Automation
added 2021/07/11 8:52 p.m.24558 views

Last Week’s Security news: PrintNightmare patches and Metasploit, Kaseya CVEs, Morgan Stanley Accellion FTA, Cisco BPA and WSA, Philips Vue PACS, CISA RVAs, Lazarus job offers

Hello guys! The third episode of Last Week’s Security news, July 5 - July 11. There was a lot of news last week. Most of them was again about PrintNightmare and Kaseya. The updates for PrintNightmare CVE-2021-34527 were finally released mid-week. It became possible not only to disable the service...

9CVSS1.1AI score0.99759EPSS
Exploits57
CNVD
CNVD
added 2020/06/15 12:0 a.m.6 views

Morgan Stanley Hobbes Out-of-Bounds Read/Write Vulnerability

Morgan Stanley Hobbes is an embedded language compiler and runtime program from Morgan Stanley USA. An out-of-bounds read/write vulnerability exists in Morgan Stanley Hobbes version 2020-05-21 and earlier. The vulnerability stems from a lack of boundary checking in the array implementation. An...

9.8CVSS7.2AI score0.02135EPSS
Exploits1References1
OSV
OSV
added 2020/06/12 11:15 p.m.3 views

CVE-2020-13656

In Morgan Stanley Hobbes through 2020-05-21, the array implementation lacks bounds checking, allowing exploitation of an out-of-bounds OOB read/write vulnerability that leads to both local and remote code via RPC execution...

9.8CVSS7.5AI score0.02135EPSS
Exploits1References1
NVD
NVD
added 2020/06/12 11:15 p.m.12 views

CVE-2020-13656

In Morgan Stanley Hobbes through 2020-05-21, the array implementation lacks bounds checking, allowing exploitation of an out-of-bounds OOB read/write vulnerability that leads to both local and remote code via RPC execution...

9.8CVSS0.02135EPSS
Exploits1References1
Prion
Prion
added 2020/06/12 11:15 p.m.12 views

Out-of-bounds

In Morgan Stanley Hobbes through 2020-05-21, the array implementation lacks bounds checking, allowing exploitation of an out-of-bounds OOB read/write vulnerability that leads to both local and remote code via RPC execution...

7.5CVSS9.4AI score0.02135EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2020/06/12 10:26 p.m.14 views

CVE-2020-13656

In Morgan Stanley Hobbes through 2020-05-21, the array implementation lacks bounds checking, allowing exploitation of an out-of-bounds OOB read/write vulnerability that leads to both local and remote code via RPC execution...

9.6AI score0.02135EPSS
Exploits1References1
CVE
CVE
added 2020/06/12 10:26 p.m.37 views

CVE-2020-13656

Morgan Stanley Hobbes contains an out-of-bounds read/write vulnerability in its array implementation, reported up to 2020-05-21. The缺 bound checking flaw allows an attacker to trigger OOB access, enabling code execution via RPC. Affected version details: Hobbes 2020-05-21 and earlier (per CNVD-20...

9.8CVSS9.4AI score0.02135EPSS
Exploits1References1Affected Software1
Openbugbounty
Openbugbounty
added 2020/02/15 9:50 p.m.13 views

stockplanconnect.morganstanley.com Improper Access Control vulnerability

Open Bug Bounty ID: OBB-1092503 Security Researcher Gh05tPT Helped patch 6892 vulnerabilities Received 10 Coordinated Disclosure badges Received 48 recommendations , a holder of 10 badges for responsible and coordinated disclosure, found a security vulnerability affecting...

0.1AI score
Exploits0
hackapp
hackapp
added 2016/02/12 1:46 a.m.1369 views

Morgan Stanley Research - Customized SSL, WebView SSL handling enabled vulnerabilities

HackApp vulnerability scanner discovered that application Morgan Stanley Research published at the 'play' market has multiple vulnerabilities...

0.3AI score
Exploits0References1Affected Software1
ThreatPost
ThreatPost
added 2015/01/06 4:19 p.m.8 views

Morgan Stanley Insider Theft Wealth Management Client Data

The financial services giant Morgan Stanley announced yesterday that that an employee had stolen sensitive information pertaining to more than 900 of the firm’s wealth-management clients. According to a company press release, the wealth management employee in question “has been terminated.”...

1.9AI score
Exploits0References1
ThreatPost
ThreatPost
added 2012/01/24 9:5 p.m.9 views

Data Breach Affects Two Million NY Customers, State Commission to Investigate

The New York State Public Service Commission announced yesterday they’ll be looking into a data breach that may have exposed the personal information of almost two million customers to unknown attackers. An employee from a software consulting firm contracted by New York State Electric & Gas NYSEG...

2.7AI score
Exploits0References7
ThreatPost
ThreatPost
added 2011/07/06 7:24 p.m.11 views

Morgan Stanley Smith Barney Breach Loses Information of 34,000

Retail brokerage Morgan Stanley Smith Barney MSSB has notified 34,000 investment clients that some of their data has been lost, including their names, addresses, social security numbers, tax identification numbers and investment income from 2010, according to a report on the Dow Jones newswires...

1.5AI score
Exploits0References6
Rows per page
Query Builder